turbot/docker_compliance

Query: exec_tls_authentication_docker_daemon_configured

Usage

powerpipe query docker_compliance.query.exec_tls_authentication_docker_daemon_configured

Steampipe Tables

SQL

with os_output as (
select
btrim(stdout_output, E' \n\r\t') as os,
_ctx ->> 'connection_name' as os_conn
from
exec_command
where
command = 'uname -s'
), hostname as (
select
btrim(stdout_output, E' \n\r\t') as host,
_ctx ->> 'connection_name' as host_conn,
_ctx
from
exec_command
where
command = 'hostname'
),
linux_output as (
select
stdout_output,
_ctx ->> 'connection_name' as conn
from
exec_command,
os_output
where
os_conn = _ctx ->> 'connection_name'
and command = 'cat /etc/docker/daemon.json'
)
select
host as resource,
case
when os.os ilike '%Darwin%' then 'skip'
when o.stdout_output::jsonb->>'hosts' not like '%tcp%' then 'info'
when o.stdout_output::jsonb->>'tlsverify' = 'true'
and o.stdout_output::jsonb->>'tlscacert' <> ''
and o.stdout_output::jsonb->>'tlscert' <> ''
and o.stdout_output::jsonb->>'tlskey' <> '' then 'ok'
else 'alarm'
end as status,
case
when os.os ilike '%Darwin%' then host || ' /etc/docker/daemon.json does not exist on ' || os.os || ' OS.'
when o.stdout_output::jsonb->>'hosts' not like '%tcp%' then host || ' Docker daemon not listening on TCP.'
when o.stdout_output::jsonb->>'tlsverify' = 'true'
and o.stdout_output::jsonb->>'tlscacert' <> ''
and o.stdout_output::jsonb->>'tlscert' <> ''
and o.stdout_output::jsonb->>'tlskey' <> '' then host || ' TLS authentication for Docker daemon is configured.'
else host || ' TLS authentication for Docker daemon is not configured.'
end as reason
, h._ctx ->> 'connection_name' as connection_name
from
hostname as h,
os_output as os,
linux_output as o
where
os.os_conn = h.host_conn
and h.host_conn = o.conn

Controls

The query is being used by the following controls: